Split-brain DNS with Privatelink domains and Internet Fallback
Disclaimer: While I work for Microsoft, this article does not represent a recommended or validated architecture. It reflects my personal thoughts on a possible usage scenario. There's a new Azure Private DNS feature that allows fallback to Public DNS record if private one is not defined. Private DNS zones and the feature itself is perfectly explained in the official documentation and in blog posts of my coworkers, and I won't even try to repeat this. ( John Savill , Jose Moreno , Official Doc ) They are mostly created for Private Endpoint support for services provided by Microsoft. However, anyone can use the same feature to create Split-brain DNS for their own domain. Several use cases, besides Microsoft-provided services using Private Endpoints, that can be useful Use case 1. Corporate Split-brain DNS Imagine, you have different website versions for external and internal users. With Private DNS zones it was possible to create split DNS before, however, managing all the recor...